There are two aspects to this. The following DENIED can be addressed by changing the libvirt QEMU configuration:
[162559.444684] audit: type=1400 audit(1725612671.214:6873): apparmor="DENIED" operation="file_mmap" class="file" profile="libvirtd//qemu_bridge_helper" name="/usr/bin/dash" pid=699975 comm="qemu-bridge-hel" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0 By setting the following: bridge_helper = "/usr/libexec/qemu/qemu-bridge-helper" in either /etc/libvirt/qemu.conf (if using qemu:///system) or ~/.config/libvirt/qemu.conf (if using qemu:///session). One need to restart libvirtd after. But then, trying again to `virsh start` gives the following: [167312.477078] audit: type=1400 audit(1725617424.236:7229): apparmor="DENIED" operation="exec" class="file" profile="libvirtd" name="/usr/libexec/qemu/qemu-bridge-helper" pid=715476 comm="rpc- libvirtd" requested_mask="x" denied_mask="x" fsuid=1000 ouid=0 which should be addressed with https://gitlab.com/libvirt/libvirt/-/commit/0caacf47d7b423db9126660fb0382ed56cd077c1 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2079806 Title: qemu-bridge-helper denied by apparmor on oracular To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/2079806/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
